Build an inventory of your systems/products/services that process personal data to discover, understand & start mitigating privacy risk in your organization.

​

Train your workforce & third parties providing privacy awareness education to perform their privacy-related duties & responsibilities consistent with your organization’s policy, processes, procedures, contracts & organization values.

Conduct a risk assessment on your privacy risks & discover how they can create follow-on impacts to your organization’s business operations, legal compliance, brand, reputation, employees & culture.

​

Build a program to ensure the ongoing review of the your organization’s privacy posture & risk appetite taking into account key factors such as changing business environment, technologies, enhanced legal obligations, revised data processing & new systems, products, services.

Develop policy, processes & procedures to manage & monitor your organization’s regulatory, legal, security & operational requirements, ensuring an understanding &  effective management/mitigation of privacy risk.

Develop people & processes for receiving, tracking & responding to complaints, concerns/questions from individuals regarding your organizations privacy practices including effective management & response to reported data incidents.

​